Instiki 0.17.3 (10/23/2009)

The most important facet of this release is a small change in the database schema. Previously, people migrating from the default SQLite3 database to MySQL ran the risk of silent data loss, because MySQL had a more strict interpretation of the column types in the database. The new schema will prevent such problems.

rake upgrade_instiki

will seamlessly upgrade your existing database to the new schema.

New Features:

Passenger support (including X-Sendfile support, if the Apache mod_xsendfile module is installed).

Version 0.16.5 (3/16/2009)

Version 0.16.4 (3/5/2009)

New Features:

Support for the HTML5 <video> and <audio> elements.

<object> and <embed> were forbidden for obvious security reasons. Now you can use <video> to include videos (Ogg/Theora encoded videos only, with .ogg or .ogv extensions) and <audio> to include audio files (Ogg/Vorbis or WAV encodings, with .ogg, .oga or .wav extensions).

You can upload videos with

[[foo.ogg:video]]

and audio files with

[[bar.wav:audio]]

x-sendfile support (Apache with the x-sendfile module or lighttpd). Serving uploaded files is handled by the webserver, freeing up Instiki to handle other requests. See the Proxying page for details.

Bugfixes

Fix Caching Problem in 0.16.3. With the patch, it’s no longer necessary that the Instiki directory be owned by the instiki user (yay!).

File Upload Fixes.

Fix Maruku Hanging Bug.

A Maruku-syntax <div> with an unclosed IAL (and, it seems, at least one equation) would cause Instiki to hang. Badly. Requiring a ‘kill -9’ to terminate it. Reverting the OpenDiv and CloseDiv Regexps to my, more simple-minded, versions fixes the problem.

Version 0.16.3 (2/9/2009)

New Features:

Bugs Fixed:

Fixed intra-wiki links in published webs.

Fixed two bugs introduced by version 0.16.2.

Security: Version 0.16.2 (1/26/2009)

On Webs with file uploads enabled, uploaded files were stored (in version 0.16.1 and earlier) in the public/ directory. This was a security threat. A miscreant could upload a .html file. When a user clicked on the link to the file, it was opened (unsanitized) in the browser.

As of version 0.16.2, uploaded files are stored in the webs/ directory. Now, when the user clicks on the link, the file is sent with the

Content-Disposition: attachment

header set, which causes the file to be downloaded, rather than opened in the browser. As always, files downloaded from the internets should be treated with caution. At least, this way, they are not automatically opened in the browser.

To move your existing uploaded files to the new location, do a

rake upgrade_instiki

Other improvements since version 0.16.1 include:

Bug Fixes:

Corrected a typo in the file_list view.

Fixed the “Backslashes in Included Equations” bug.

Hide equations from WikiChunk processing.

Doesn’t seem to work for inline equations: a bug.

Fix a cosmetic issue with equation numbering.

Exporting a Web as a .zip archive now supports XHTML export.

New Feature:

Added links to referring pages in the file_list view.

Version 0.16.1 (1/10/2009)

Bug Fixes:

WikiWords can start with Multiple capital letters (better matches what other implementations do).

More cache-expiry fixes

Clean up detritus from deleting a page.

Eliminate the bug-ridden GCI.unescapeHTML, in favour of our own routine.

New Features:

Interface (actually, two interfaces) for managing uploaded files.

Webs which use the Textile, RDoc and Mixed text filter engines are now sent as text/html. Which makes using those “legacy” filters practical on this branch of Instiki.

Recent Fixes (3/30/2007)

XML-safe output (for non-MathML-aware XHTML clients): ported MathML::Entities to Ruby and use it to filter output

Send S5 slideshows to Safari as text/html. Safari’s DOM support is rather broken for real XHTML.

BZR Feed (3/12/2007)

If you are tracking developments in this branch of Instiki via the BZR Repository, now there’s an easy way to keep abreast. The Repository has its own Atom feed. Subscribe, and you will be automatically informed of updates to the software. The same is true of the BZR Repository for itex2MML and itsAtom feed.

Minor Update (3/2/2007)

This branch of Instiki is in constant development, so I won’t make a practice of announcing each and every minor improvement. But XHTML well-formedness is a priority and I fixed a well-formedness issue in the “Rollback” function today.

S5 Support (3/1/2007)

There are still a few bugs, but my branch of Instiki is now S5-enabled. Any page in the category S5-slideshow has a new “View.” Scroll to the bottom of the page and click on “S5” to view the slide show. S5 is cool, in its own right. But MathML and SVG in S5 is beyond cool. And Maruku provides a drop-dead simple authoring environment.

XSS Vulnerability in Instiki (2/27/2007)

A Cross-Site-Scripting vulnerability has been found in Instiki. This is a serious flaw, allowing visitors to an unpatched Instiki Wiki to inject malicious javascript onto your Wiki. Please upgrade to the latest version.